Cookie Policy
This Cookie Policy explains how CastaliaLux uses cookies and similar technologies to operate the website, maintain security, remember preferences and understand how the digital gallery is used.
Last updated: 16 July 2026
1. What Cookies Are
Cookies are small text files or similar records stored on or accessed from a browser or device when a website is visited.
Cookies can enable a website to:
- recognise a browser or session;
- maintain secure sign-in;
- remember preferences;
- retain selected objects;
- understand technical performance;
- distinguish legitimate activity from abuse.
Some technologies perform functions similar to cookies, including local storage, pixels, tags and software-development-kit identifiers. References to “cookies” in this policy include comparable technologies where appropriate.
2. First-Party and Third-Party Cookies
First-party cookies are set or accessed by CastaliaLux or by services operating directly on behalf of the website.
Third-party cookies or technologies are set or accessed by an independent provider integrated into the website, such as an authentication, payment, analytics, media or security service.
Third-party providers may process information under their own privacy policies.
3. Session and Persistent Cookies
Session cookies ordinarily expire when the browser session ends.
Persistent cookies remain for a defined period or until deleted through browser or device settings.
The duration of a cookie depends on its function and the settings applied by the relevant provider.
4. Strictly Necessary Cookies
Strictly necessary cookies support functions required for the website to operate or for a service expressly requested by the user.
They may be used to:
- enable secure navigation;
- maintain authentication;
- protect accounts;
- operate the Acquisition bag;
- preserve checkout progress;
- remember privacy choices;
- prevent fraud;
- distribute technical traffic;
- maintain website security.
Because these technologies are necessary to provide core functions, they may not be subject to optional consent where applicable law permits this.
Disabling them through browser settings may prevent parts of the website from functioning correctly.
5. Preference and Functional Technologies
Preference technologies may remember choices such as:
- interface preferences;
- sound settings;
- selected objects;
- session continuity;
- certain display or navigation choices.
Some preferences may be stored in browser local storage rather than conventional cookies.
Where legally required, optional preference technologies should be activated only after the appropriate choice has been made.
6. Analytics and Performance Cookies
Analytics technologies may help us understand:
- which pages are visited;
- how visitors move through the website;
- whether technical errors occur;
- how long pages take to load;
- which devices and browsers are used;
- how website features perform.
This information is used to improve stability, navigation and the client experience.
Where required by applicable law, non-essential analytics should not operate until the user has provided consent.
7. Authentication Technologies
Authentication technologies are used to:
- recognise a secure signed-in session;
- process sign-in links;
- protect the Cabinet;
- prevent unauthorised account access;
- complete sign-out;
- support recovery or verification flows.
Removing authentication-related storage may sign the user out or interrupt account functionality.
8. Acquisition Bag and Assemblage Storage
The website may use browser storage or account-based records to maintain:
- objects placed in the Acquisition bag;
- objects saved to an Assemblage;
- relevant session state.
For visitors who are not signed in, certain selections may be stored locally on the device.
For signed-in collectors, selections may be associated with the account so that they can be retrieved across eligible sessions or devices.
9. Payment and Fraud-Prevention Technologies
During checkout, payment and security providers may use cookies or comparable technologies to:
- process payment securely;
- authenticate the transaction;
- prevent fraud;
- evaluate device or session risk;
- comply with financial and regulatory obligations.
These technologies may be necessary to complete the requested transaction.
Their use may also be governed by the payment provider’s own policies.
10. Embedded Content and External Platforms
Where the website includes embedded media, social links or content from another platform, the external provider may place or access technologies when the feature is used.
Simply displaying a standard outbound link should not by itself require CastaliaLux to activate unnecessary third-party tracking.
11. Cookie Consent
Where consent is required, the website should provide a clear choice before non-essential cookies or similar technologies are activated.
The available controls should distinguish between:
- necessary technologies;
- optional analytics;
- optional functional technologies;
- any other optional category actually used by the website.
Consent must not be implied merely because a visitor continues browsing.
Rejecting optional cookies should not prevent access to the ordinary public content of the website.
12. Managing Cookie Preferences
Visitors may manage available preferences through the cookie-consent control provided on the website.
Cookie choices should remain accessible after the initial banner has been closed, for example through a discreet “Cookie Settings” link in the footer or policy page.
A visitor may also delete or block cookies through browser or device settings.
Browser-level blocking may affect:
- sign-in;
- remembered selections;
- Acquisition bag continuity;
- checkout;
- security;
- general website functionality.
13. Withdrawing Consent
Where processing is based on consent, that consent may be withdrawn at any time through the available cookie settings.
Withdrawal does not make earlier consent-based processing unlawful.
Following withdrawal, optional technologies should stop operating to the extent technically and legally required. Existing cookies may need to be deleted or allowed to expire, depending on implementation.
14. Do Not Track and Browser Signals
Some browsers transmit “Do Not Track” or similar preference signals.
Because there is no single universally implemented standard governing all such signals, the website may not respond consistently to every signal.
Where applicable law requires recognition of a specific legally valid preference mechanism, CastaliaLux will aim to honour that requirement.
15. Current Cookie Inventory
The precise technologies used by the website may change as its secure infrastructure evolves. CastaliaLux periodically reviews its production environment and updates this policy where necessary. Visitors can review and manage available optional categories through Cookie Settings.
16. Changes to This Cookie Policy
We may update this Cookie Policy when technologies, providers, website functions or legal requirements change.
The latest version will be published on this page with a revised “Last updated” date.
17. Contact
This Cookie Policy is issued by CastaliaLux LLC, FZ, a company registered and headquartered in Dubai, United Arab Emirates. CastaliaLux maintains an international presence in Hong Kong, London and the United States.
For questions regarding cookies or privacy choices, please contact CastaliaLux through the Contact page.
For questions regarding this policy, please contact CastaliaLux through the Contact page.